Feature: AWS Secrets Manager delete-secret

2019-04-05 15:00:11 +01:00 · 2019-04-05 15:00:11 +01:00 · fc8cf2d872
commit fc8cf2d872
parent 97408552a3
4 changed files with 93 additions and 1 deletions
--- a/moto/secretsmanager/models.py
+++ b/moto/secretsmanager/models.py
@ -213,6 +213,35 @@ class SecretsManagerBackend(BaseBackend):

        return secret_list, None

+    def delete_secret(self, secret_id, recovery_window_in_days, force_delete_without_recovery):
+
+        if not self._is_valid_identifier(secret_id):
+            raise ResourceNotFoundException
+
+        if not force_delete_without_recovery:
+            raise InvalidParameterException(
+                "An error occurred (InvalidParameterException) when calling the DeleteSecret operation: \
+                 ForceDeleteWithoutRecovery must be true (Moto cannot simulate soft deletion with a recovery window)"
+            )
+
+        if recovery_window_in_days and force_delete_without_recovery:
+            raise InvalidParameterException(
+                "An error occurred (InvalidParameterException) when calling the DeleteSecret operation: You can't \
+                use ForceDeleteWithoutRecovery in conjunction with RecoveryWindowInDays."
+            )
+
+        secret = self.secrets.pop(secret_id, None)
+
+        deletion_date = int(time.time())
+
+        if not secret:
+            raise ResourceNotFoundException
+
+        arn = secret_arn(self.region, secret['secret_id'])
+        name = secret['name']
+
+        return arn, name, deletion_date
+

 available_regions = (
    boto3.session.Session().get_available_regions("secretsmanager")
--- a/moto/secretsmanager/responses.py
+++ b/moto/secretsmanager/responses.py
@ -75,3 +75,14 @@ class SecretsManagerResponse(BaseResponse):
            next_token=next_token,
        )
        return json.dumps(dict(SecretList=secret_list, NextToken=next_token))
+
+    def delete_secret(self):
+        secret_id = self._get_param("SecretId")
+        recovery_window_in_days = self._get_param("RecoveryWindowInDays")
+        force_delete_without_recovery = self._get_param("ForceDeleteWithoutRecovery")
+        arn, name, deletion_date = secretsmanager_backends[self.region].delete_secret(
+            secret_id=secret_id,
+            recovery_window_in_days=recovery_window_in_days,
+            force_delete_without_recovery=force_delete_without_recovery,
+        )
+        return json.dumps(dict(ARN=arn, Name=name, DeletionDate=deletion_date))